Archives for July 25th, 2008
PPTP & Routing Interesting Traffic
Today I was a client’s corporate office configuring a new Cisco PIX 506 firewall with VPN support. While the PIX supports IPSEC, we decided to use PPTP because client side configuration on Windows 2000/XP is very straight forward and rather simple for a non-technical employee to configure.
After configuring PPTP on the PIX (which is a snap), I configured and tested a Windows XP workstation using a dialup connection. While the test was a success (the tunnel was established and the secure network could be accessed), internet access failed because the PIX won’t/can’t redirect traffic that isn’t on it’s local network (Plug: the Cisco VPN Concentrator can perform this task with ease). A simple fix for this problem would appear to be to modify the Windows VPN connection and disable the use default gateway on remote network option, but now no traffic is getting though the VPN tunnel to the secure network.